In the mean time,here is how you can start -
Step 1 – Search for them Make Google Search to find sites running Apache and PHP 4.4.
Step 2 – Scan them Start by scanning them using Nmap or any other tool,Scan and find the open ports. If you find port 2000 open,then you have almost got it. most websites running PHP4.4 have this port for admin login. Now just login using port 2000 ie - http://www.website.com:2000 and you will be comfortably login into admin page like this -
Step 3 – Hack them
Now in the fields, you have to type - username – admin password – a‘ or 1=1 or =b domain - a‘ or 1=1 or =b and press go,you will login into admin You have hacked into admin.
Bishal Ob Roy?s Suggesion “Sites based on PHP 4.4 have the vulnerability in them that they are vulnerable to SQL injection.It will literally take 43 seconds”
0 comments:
Post a Comment